This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: yJyUHlEmHAgQ7lMbblaaJfrxuEhrgIACrdZ/RgqniKw= Subject key identifier: 40:DC:E4:03:FF:DB:B5:5D:C3:B3:C1:62:2F:34:15:34:B9:92:DF:ED Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 01BC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 01B4 Signing time: Fri 19 Dec 2025 02:27:27 +0000 Manifest this update: Fri 19 Dec 2025 02:27:26 +0000 Manifest next update: Fri 26 Dec 2025 02:27:26 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: S8lhV4FabpVRxWuXrQJVb32dhaNgFr0Kq9QSGsqAk+U=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: G0w0TQdZeUrlcSkeMZASVFwkhbdyy5+tF+86mftNAhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 02:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 444 (0x1bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Dec 19 02:27:26 2025 GMT Not After : Dec 26 02:27:26 2025 GMT Subject: CN=6944b80f-ae81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:aa:6a:46:18:a1:0c:51:a8:2c:28:5e:59:e5: 64:55:7a:4c:b7:74:d6:e5:90:dd:66:b8:d7:aa:b0: 44:a6:de:cf:fe:de:04:ac:c3:2c:33:d0:01:ed:ea: f4:6c:eb:ac:bd:f0:b0:70:99:7c:59:ce:ac:bb:91: b6:79:0e:92:56:76:c3:ec:d7:68:b7:51:27:de:e5: 4f:e9:31:43:9a:45:c6:a8:4b:50:48:4e:b7:18:9b: 86:7a:24:87:d7:e0:ae:51:ea:a1:0f:4f:96:c8:b2: 08:98:b6:0b:b1:bd:1d:c7:78:a7:12:03:b1:7d:79: a6:a1:0c:fb:f2:34:89:5f:6d:70:f8:33:1c:42:d7: 4e:10:f9:69:06:41:44:b8:f9:28:e4:cc:b7:ad:8b: 3b:99:73:36:99:bd:7f:c3:7d:9c:28:95:08:a6:91: 73:45:f8:31:58:25:e9:bd:3b:fe:3b:c2:a0:e0:6e: 0f:b6:e5:70:cc:1b:e4:8f:55:1d:8a:c4:68:02:d4: 94:88:49:80:79:f4:d5:c6:57:7b:b4:ca:93:ae:8a: d1:af:eb:d8:7a:20:15:7f:de:8f:cb:24:65:26:70: e2:6f:1b:66:75:e2:c8:cd:cd:b1:b0:0f:b3:04:c4: fa:2a:67:15:19:a9:73:98:b9:83:e4:fe:78:15:9d: 22:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DC:E4:03:FF:DB:B5:5D:C3:B3:C1:62:2F:34:15:34:B9:92:DF:ED X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:15:2a:0c:f3:63:16:be:20:09:f2:5f:6f:c8:35:33:1e:6e: 89:27:ba:a2:c3:0e:27:5a:b8:fb:0d:d6:ee:55:a5:73:23:b0: 9a:73:9c:26:cd:f8:ca:ac:ed:50:dc:3b:d0:cc:0a:22:52:cd: 94:7b:db:d9:34:6c:47:71:1d:04:3d:8d:a8:78:e3:fa:ef:63: 2d:ef:4a:d7:70:be:07:41:49:95:1e:b9:a6:7f:e6:b2:1e:b7: f0:88:ba:58:e1:d8:d0:7c:72:f6:dd:62:ac:b3:70:9c:e5:3f: 42:1a:4f:f3:24:cc:1f:17:4c:d9:fd:fa:32:56:ca:22:d1:dd: a2:1a:4c:77:0b:85:58:97:e2:40:82:a0:8c:7e:ab:02:50:af: b0:bf:fa:4a:43:b9:a2:8c:f2:00:ea:38:89:bc:7e:13:cd:ff: 4b:8c:14:a9:8b:ab:be:b0:27:e9:6d:74:43:7b:53:3e:81:2c: 6e:67:09:e9:c7:ce:51:e5:3a:29:fc:29:c3:bf:50:a6:e9:26: 50:cf:75:d3:8a:68:08:98:b6:bd:39:8c:3d:7b:12:f6:ee:95: 1a:cf:57:c8:04:6a:22:c4:fc:f2:1d:59:44:22:81:51:ac:7b: 0a:60:d2:21:0b:ce:c2:4d:b5:94:4f:02:13:af:e9:8c:f6:fe: 7c:fc:49:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMjE5MDIyNzI2WhcNMjUxMjI2MDIyNzI2WjAYMRYwFAYD VQQDDA02OTQ0YjgwZi1hZTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqpqRhihDFGoLCheWeVkVXpMt3TW5ZDdZrjXqrBEpt7P/t4ErMMsM9AB7er0 bOusvfCwcJl8Wc6su5G2eQ6SVnbD7Ndot1En3uVP6TFDmkXGqEtQSE63GJuGeiSH 1+CuUeqhD0+WyLIImLYLsb0dx3inEgOxfXmmoQz78jSJX21w+DMcQtdOEPlpBkFE uPko5My3rYs7mXM2mb1/w32cKJUIppFzRfgxWCXpvTv+O8Kg4G4PtuVwzBvkj1Ud isRoAtSUiEmAefTVxld7tMqTrorRr+vYeiAVf96PyyRlJnDibxtmdeLIzc2xsA+z BMT6KmcVGalzmLmD5P54FZ0iPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEDc5AP/ 27Vdw7PBYi80FTS5kt/tMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0FSoM82MWviAJ8l9vyDUzHm6JJ7qiww4nWrj7DdbuVaVzI7Cac5wm zfjKrO1Q3DvQzAoiUs2Ue9vZNGxHcR0EPY2oeOP672Mt70rXcL4HQUmVHrmmf+ay HrfwiLpY4djQfHL23WKss3Cc5T9CGk/zJMwfF0zZ/foyVsoi0d2iGkx3C4VYl+JA gqCMfqsCUK+wv/pKQ7mijPIA6jiJvH4Tzf9LjBSpi6u+sCfpbXRDe1M+gSxuZwnp x85R5Top/CnDv1Cm6SZQz3XTimgImLa9OYw9exL27pUaz1fIBGoixPzyHVlEIoFR rHsKYNIhC87CTbWUTwITr+mM9v58/EnN -----END CERTIFICATE-----Generated at Sat Dec 20 00:55:33 2025 by rpki-client